$ rpki-client -vvf rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft File: UjrFjamEDQscqom9_54NzkZ2fEo.mft (raw, json) Hash identifier: NITodDI9N7by0bRaxwlWQQNvJHV328QfC49UPjG6Hpo= Subject key identifier: 5D:CB:1F:55:B0:33:87:9F:48:FD:18:D6:B1:10:F4:81:A5:14:C7:0D Authority key identifier: 52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A Certificate issuer: /CN=A9124B27/serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft Manifest number: 44 Signing time: Fri 25 Apr 2025 06:28:25 +0000 Manifest this update: Fri 25 Apr 2025 06:28:25 +0000 Manifest next update: Fri 02 May 2025 06:28:25 +0000 Files and hashes: 1: UjrFjamEDQscqom9_54NzkZ2fEo.crl (hash: Qr2cdKnJatyeoxv+p3wLhtGnXoYPBEXrVzmuQmXaHtI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B27, serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Validity Not Before: Apr 25 06:28:25 2025 GMT Not After : May 2 06:28:25 2025 GMT Subject: CN=680b2b89-adf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:9a:f1:db:8c:20:4e:bf:2d:34:4e:3c:6e: 69:f9:9e:dd:0d:fa:37:c4:84:59:0b:f7:8e:94:72: 61:6d:44:91:83:5f:37:8a:cc:a4:13:ae:93:9b:67: ff:03:51:ed:c3:06:85:38:55:68:5d:70:1c:da:d8: 8b:c2:e1:1e:1e:ea:a9:56:b0:17:b9:9c:fd:05:0f: 65:00:ad:e0:32:c1:15:cf:e8:a1:09:dd:a6:3e:fc: ec:3a:69:9e:03:0b:9c:95:bf:ea:f7:01:0b:94:29: 55:75:ed:9a:f0:db:13:7c:f8:17:1c:f5:a7:91:3d: ef:29:80:a5:f4:1e:a6:c9:f0:a0:08:76:4a:f9:e3: 7b:b4:b7:b3:cc:06:16:68:af:d6:60:5c:93:11:3f: 20:ba:45:2c:2a:ae:cd:57:61:b6:16:ad:9d:93:f4: 43:9c:16:43:4f:dc:7b:c9:0b:c7:ae:ef:f9:34:27: 0f:33:9c:1e:ee:dd:93:63:c2:3f:7e:d1:44:01:21: 3b:86:42:91:61:f5:c0:7b:fc:44:e8:02:f3:cc:f3: f8:a5:d1:4d:48:0e:cd:51:30:93:9b:77:7b:40:84: 06:f6:b4:09:fd:63:6b:72:2f:81:14:4d:fd:84:4c: 4d:79:90:50:f4:6c:46:c6:15:40:44:e2:e2:9a:e1: 1a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:CB:1F:55:B0:33:87:9F:48:FD:18:D6:B1:10:F4:81:A5:14:C7:0D X509v3 Authority Key Identifier: keyid:52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:51:96:08:39:73:8c:0a:0a:8b:48:b0:01:84:cd:2e:36:01: bf:93:07:57:ff:f5:a6:1d:14:a0:4d:34:82:9c:80:9b:eb:99: 05:64:67:b4:23:94:2e:2c:c3:93:ba:7f:bc:73:a7:1f:16:fd: 33:72:a0:e8:0e:51:09:2f:42:0a:a1:42:c9:e2:bd:a7:a0:d3: 61:c9:d3:ee:66:e9:c3:ce:21:bd:c6:1a:ed:3f:58:fb:9d:96: 7a:d6:15:8a:f6:2a:64:36:2c:2d:58:c0:38:04:85:38:1f:b2: e1:b7:b2:78:d1:83:7e:b7:a4:f8:83:a5:9f:4c:64:63:b7:37: b5:4d:3d:07:c4:d8:81:d6:1f:2d:ea:31:d1:60:2d:9e:5e:9d: 6f:d3:77:ac:04:9d:81:32:5d:33:90:46:f1:a0:b0:4f:6d:ec: 69:6c:90:4f:79:e0:df:36:c7:0a:24:f6:9e:e8:18:2b:32:85: 7c:69:93:7f:b4:4f:a5:0b:98:2e:0a:cd:d7:21:d0:cf:74:70: 5a:64:62:9c:60:7f:18:93:47:b5:20:5c:ea:8b:a2:02:20:83: 16:5b:65:d2:4c:8a:94:92:a6:bb:d3:a2:63:ee:84:34:cb:42: 97:cc:c6:86:a4:3a:bb:1b:a9:65:36:68:dc:9f:da:27:68:67: 5c:45:bd:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NEIyNzExMC8GA1UEBRMoNTIzQUM1OERBOTg0MEQwQjFDQUE4OUJERkY5RTBEQ0U0 Njc2N0M0QTAeFw0yNTA0MjUwNjI4MjVaFw0yNTA1MDIwNjI4MjVaMBgxFjAUBgNV BAMTDTY4MGIyYjg5LWFkZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+lprx24wgTr8tNE48bmn5nt0N+jfEhFkL946UcmFtRJGDXzeKzKQTrpObZ/8D Ue3DBoU4VWhdcBza2IvC4R4e6qlWsBe5nP0FD2UAreAywRXP6KEJ3aY+/Ow6aZ4D C5yVv+r3AQuUKVV17Zrw2xN8+Bcc9aeRPe8pgKX0HqbJ8KAIdkr543u0t7PMBhZo r9ZgXJMRPyC6RSwqrs1XYbYWrZ2T9EOcFkNP3HvJC8eu7/k0Jw8znB7u3ZNjwj9+ 0UQBITuGQpFh9cB7/EToAvPM8/il0U1IDs1RMJObd3tAhAb2tAn9Y2tyL4EUTf2E TE15kFD0bEbGFUBE4uKa4RoVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXcsfVbAz h59I/RjWsRD0gaUUxw0wHwYDVR0jBBgwFoAUUjrFjamEDQscqom9/54NzkZ2fEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0QjI3LzUwMDYxOERDQzZF ODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFzY3FvbTlfNTROemtaMmZF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWpyRmphbUVEUXNjcW9tOV81NE56a1oyZkVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 QjI3LzUwMDYxOERDQzZFODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFz Y3FvbTlfNTROemtaMmZFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHtRlgg5c4wKCotIsAGEzS42Ab+TB1f/9aYdFKBNNIKcgJvrmQVkZ7Qj lC4sw5O6f7xzpx8W/TNyoOgOUQkvQgqhQsnivaeg02HJ0+5m6cPOIb3GGu0/WPud lnrWFYr2KmQ2LC1YwDgEhTgfsuG3snjRg363pPiDpZ9MZGO3N7VNPQfE2IHWHy3q MdFgLZ5enW/Td6wEnYEyXTOQRvGgsE9t7GlskE954N82xwok9p7oGCsyhXxpk3+0 T6ULmC4Kzdch0M90cFpkYpxgfxiTR7UgXOqLogIggxZbZdJMipSSprvTomPuhDTL QpfMxoakOrsbqWU2aNyf2idoZ1xFveA= -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:21 2025 by rpki-client